Unix, Linux, DevOps , Cloud computing and BigData Knowledge-Base


An ASPICE Overview

Now that you’re well-versed in the Waterfall Model and V-Model, it’s time to take the step up into a wider world of ASPICE. I won’t bore you with the details of its pedigree but ASPICE descends from a line of ISO documents concerned with setting up standards around software...


Debian LTS: DLA-2499-1: sympa security update>

Sympa, a modern mailing list manager, grants full SOAP API access by sending invalid string as the cookie value, if the SOAP endpoint was enabled. An attacker could manipulate the mailing lists, including subscribing e-mails or getting the list of subs… Continue Reading — Debian...


Mageia 2020-0463: jasper security update>

There’s a flaw in jasper’s jpc encoder in versions prior to 2.0.23. Crafted input provided to jasper by an attacker could cause an arbitrary out-of-bounds write. This could potentially affect data confidentiality, integrity, or application availability… Continue Reading — Mageia 2020-0463: jasper security update>


Mageia 2020-0462: thunderbird security update>

When a BigInt was right-shifted the backing store was not properly cleared, allowing uninitialized memory to be read (CVE-2020-16042). Certain blit values provided by the user were not properly constrained leading to a heap buffer overflow in WebGL on … Continue Reading — Mageia 2020-0462:...


Get every new post delivered to your Inbox

Join other followers

Page 141 of 2989